Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

463f09d8e1...18.exe

windows7-x64

7

463f09d8e1...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    463f09d8e1a3ace2dc63093ecc027354_JaffaCakes118

  • Size

    216KB

  • Sample

    240714-rz5k6axajg

  • MD5

    463f09d8e1a3ace2dc63093ecc027354

  • SHA1

    e0faf860e093ae2167a6bfec0261d6015549ae65

  • SHA256

    87750da1e198e4664fc68eac13fb0cf75222c07794bb184bb4db9bd818315cc7

  • SHA512

    c9928917f50fadc46a34c610a96617fa61ea3131bd33333589e85fab8677f1f140188d26f9d5369c8a24db4511aff32ddfdf3c2618b6bc63e98815c69131f522

  • SSDEEP

    3072:Cd6HpiVEibJ7rEixbTugWP2zHVrtkaCMcaDAvTJiP8DIAGjCX+XsIK:Cd6HpzibJ7rEixDm21VCjnTAjEys

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      463f09d8e1a3ace2dc63093ecc027354_JaffaCakes118

    • Size

      216KB

    • MD5

      463f09d8e1a3ace2dc63093ecc027354

    • SHA1

      e0faf860e093ae2167a6bfec0261d6015549ae65

    • SHA256

      87750da1e198e4664fc68eac13fb0cf75222c07794bb184bb4db9bd818315cc7

    • SHA512

      c9928917f50fadc46a34c610a96617fa61ea3131bd33333589e85fab8677f1f140188d26f9d5369c8a24db4511aff32ddfdf3c2618b6bc63e98815c69131f522

    • SSDEEP

      3072:Cd6HpiVEibJ7rEixbTugWP2zHVrtkaCMcaDAvTJiP8DIAGjCX+XsIK:Cd6HpzibJ7rEixDm21VCjnTAjEys

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks